WaielEid
asked on
Accessing Remote desktop through Nat network
Hi,
I have situation where i have 2 isolated network
let me explain more about the 2 networks first.
- both network have their own Internet provider
- each network configured to block any incoming traffic but allow any outgoing traffic to the Internet.
- one of the network allow only out going traffic through proxy.
- both network uses NAT.
i have 2 systems one in each network (both windows xp) and have Remote desktop running on it
since i can't change the configuration of the network on the Internet gateway i can't setup port forwarding for it
what i want is to be able to access the machine in the other network using remote desktop ?
I have situation where i have 2 isolated network
let me explain more about the 2 networks first.
- both network have their own Internet provider
- each network configured to block any incoming traffic but allow any outgoing traffic to the Internet.
- one of the network allow only out going traffic through proxy.
- both network uses NAT.
i have 2 systems one in each network (both windows xp) and have Remote desktop running on it
since i can't change the configuration of the network on the Internet gateway i can't setup port forwarding for it
what i want is to be able to access the machine in the other network using remote desktop ?
ASKER
That is the problem i can't change the configuration or enable any ports/ or even setup a prot forward on the firewall/gateway ..
i was thinking of adding a third machine on the net that both machine connect to but i don't know how. or what software can help
i was thinking of adding a third machine on the net that both machine connect to but i don't know how. or what software can help
I'm not sure in your current configuration if you could do this without access to the gateway or NAT entries. If you added a third machine, it would have to have an O/S that has NAT server capability such as Windows 2000/2003 Server and then you could configure your NAT entries there, although you would then still need to change the gateway addresses on both networks to point to this new server and it seems like a fairly expensive route to go to be honest.
you could try using some other free remote access programs and see if they can get through the firewall/gateway such as VNC (www.realvnc.com) or RAdmin (www.radmin.com) although if the firewall is setup any way correctly, then I can't see it allowing these through either.
you could try using some other free remote access programs and see if they can get through the firewall/gateway such as VNC (www.realvnc.com) or RAdmin (www.radmin.com) although if the firewall is setup any way correctly, then I can't see it allowing these through either.
IF you want to remote access to other network then you must have
1. A user and password of the network user which have the permission of remote desktop or terminal service on both networks.
2. You have a gateway server or you make any computer to a gateway pc which route your IP address means you can use the remote and routing service on both gateway. Which is NAT your request?
3. If you are using the proxy server then you can have the allow terminal service port 3389 enabled .
4. IF you have firewall then also check the port and ip range
I think your problem resolved
1. A user and password of the network user which have the permission of remote desktop or terminal service on both networks.
2. You have a gateway server or you make any computer to a gateway pc which route your IP address means you can use the remote and routing service on both gateway. Which is NAT your request?
3. If you are using the proxy server then you can have the allow terminal service port 3389 enabled .
4. IF you have firewall then also check the port and ip range
I think your problem resolved
ASKER
Still i know this
let me clear it more.
I have no access to any of the Gateway / proxy configuration .. that's why i can't set any ports on the gateway or the proxy.
the idea i got is to have the 2 systems report to a third system on the net ( since only outgoing traffic is allowed ) .
the third machine will act as a switch between them and transfer the the data coming from both to each other.
Is there away to do this by any application or port forwarding application for windows xp !?
let me clear it more.
I have no access to any of the Gateway / proxy configuration .. that's why i can't set any ports on the gateway or the proxy.
the idea i got is to have the 2 systems report to a third system on the net ( since only outgoing traffic is allowed ) .
the third machine will act as a switch between them and transfer the the data coming from both to each other.
Is there away to do this by any application or port forwarding application for windows xp !?
If both machines are going to connect to that machine out on the net using RDP, your only change is to set up that machine on the net to use a different port than 3389... maybe something like 8080 since it's a web port. Other than that though, you're pretty much screwed since you have no control over the network. (Not really sure of your intention, so I'm not really going to list that piece in here)
But it sounds like chances are the network operators are blocking access to that port when it's going outside of the network. That's something you obviously won't be able to change. However, if they're blocking RDP traffic, period, then you can't use remote desktop.
But it sounds like chances are the network operators are blocking access to that port when it's going outside of the network. That's something you obviously won't be able to change. However, if they're blocking RDP traffic, period, then you can't use remote desktop.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thanks Robwill
i was thinking about VPN connection to the server on the net
hamachi is really a good sloution for it
THanks again
i was thinking about VPN connection to the server on the net
hamachi is really a good sloution for it
THanks again
Thanks WaielEid.
Hamachi should work well so long as someone has not intentionally added out going filters to block it. No default rule should cause a problem. Using the Windows Server VPN won't likely work either, as it requires port forwarding, so you are quite limited.
Good luck,
--Rob
Hamachi should work well so long as someone has not intentionally added out going filters to block it. No default rule should cause a problem. Using the Windows Server VPN won't likely work either, as it requires port forwarding, so you are quite limited.
Good luck,
--Rob
Hope this helps